News Summary

• Thousands of companies could be at risk from an actively exploited Citrix zero day that hackers have already abused to target at least one critical infrastructure organization in the United States
• The Shadowserver Foundation a nonprofit organization that works to make the internet more secure said it has found more than Citrix servers worldwide at risk of compromise unless patches are applied
• The largest number of unpatched servers are based in the U S followed by Germany the U K and Australia according to their analysis
• It s not yet known who is behind the exploitation of this vulnerability but Citrix vulnerabilities have been known to be exploited by both financially motivated cybercriminals and state sponsored threat actors including groups linked to China